[EPIC] User-to-user permissions backed by OIDC

Following on from #40 (comment 92906), I'm creating an issue to track the changes to the platform associated with user-to-user permissions backed by OIDC.

The first step will be to finalise the specifications associated with user-to-user permissioning:

#56 (moved)

As part of this plan we will need to consider the intended user experience of user-to-user permissions:

#57 (moved)

We will also need to establish a single federated identity for users across the platform:

#54 (moved)

We will then need to use these specifications to scope changes to the keycloak implementation, the proxy server and the data permissioning module, and implement these changes.

Edited Jun 30, 2025 by Calum Mackervoy